Re: NTFS permissions?
- From: "William Stokes" <will@xxxxxxxxxxxxx>
- Date: Tue, 24 Apr 2007 08:34:20 +0300
Thanks.
It is how you suggested. The creator owner is from directory and the
username of the creator is shown in the files properties/security tab.
It was actually a very funny situation since the user was able to edit and
even delete the file but not rename it :) The problem was solved by adding
creator/owner rights to write to the directory holdin the file.
Will
"Harry Johnston" <harry@xxxxxxxxxxxxxxxxxx> kirjoitti
viestissä:epdfX%23dhHHA.1240@xxxxxxxxxxxxxxxxxxxxxxx
William Stokes wrote:
I read from 2003R2 server help that NTFS permissions are cumulative. So
does this mean that if user has a read access to a file via Domain Users
Group (to which he is a member) and Full Controll because of Creator
Owner rights (which he is) the result is that this user has full controll
to the file?
Yes and no. NTFS permissions are cumulative as you describe. However
CREATOR OWNER doesn't count directly towards a user's permissions, it is
only used in inheritance.
So if the permissions on the file say
Domain Users:R
CREATOR OWNER:F
the user will have read access. If the permissions were inherited from a
directory, CREATOR OWNER should have been automatically replaced by the
username, so it would look like
Domain Users:R
username:F
and the user would have full acccess.
I've been testing this scenario and it happens that the user seems to
have full controll while viewing Effective Access tab in the file
properties but he cannot rename the file.
You should also note that you need write access to the folder as well as
the file in order to rename a file.
Harry.
.
- References:
- NTFS permissions?
- From: William Stokes
- Re: NTFS permissions?
- From: Harry Johnston
- NTFS permissions?
- Prev by Date: Re: Hidding Folder
- Next by Date: Re: Shutdown remotely
- Previous by thread: Re: NTFS permissions?
- Next by thread: Re: user that I did not set up and isn't in control panel
- Index(es):
Relevant Pages
|
